CVE-2024-32022

CVSS 3.1 Score 9.1 of 10 (high)

Details

Published Apr 16, 2024
Updated: Apr 19, 2024
CWE ID 77

Summary

CVE-2024-32022 is a newly identified vulnerability affecting Kohya_ss, a Graphical User Interface for Kohya's Stable Diffusion trainers. This issue allows an attacker to inject commands into the basic_caption_gui.py file, potentially gaining unauthorized access or executing arbitrary code. This vulnerability has been addressed in version 23.1.5 of Kohya_ss. Users are strongly encouraged to update their software to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share